Описание
Directory traversal vulnerability in index.php in Fantastico, as used with cPanel 11.x, allows remote attackers to read arbitrary files via a .. (dot dot) in the sup3r parameter.
Ссылки
- Exploit
- Exploit
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:a:netenberg:fantastico_de_luxe:*:*:*:*:*:*:*:*
Одно из
cpe:2.3:a:cpanel:cpanel:11:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.4.19:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.8.6:stable:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.8.6_stable:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.16:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.18:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.18.1:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.18.2:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.18.3:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.18.4:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.19.3:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.21:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.21:beta:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.22:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.22.1:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.22.2:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.22.3:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.23.1:current:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.23.1_current:*:*:*:*:*:*:*
EPSS
Процентиль: 74%
0.00843
Низкий
5 Medium
CVSS2
Дефекты
CWE-22
Связанные уязвимости
github
больше 3 лет назад
Directory traversal vulnerability in index.php in Fantastico, as used with cPanel 11.x, allows remote attackers to read arbitrary files via a .. (dot dot) in the sup3r parameter.
EPSS
Процентиль: 74%
0.00843
Низкий
5 Medium
CVSS2
Дефекты
CWE-22